Linux Permissions Cheat Sheet 


I created this repository in hopes that it may be used as a helpful reference. 


Permissions 


Permissions on Unix and other systems like it are split into three classes. 


e User 
e Group 
e Other 


Files and directories are owned by a user. 
Files and directories are also assigned to a group. 


If a user is not the owner, nor a member of the group, then they are classified as other. 


Changing permissions 


In order to change permissions, we need to first understand the two notations of permissions. 


1. Symbolic notation 


2. Octal notation 


Symbolic notation 


Symbolic notation is what you'd see on the left-hand side if you ran a command like Is -1 in a terminal. 
The first character in symbolic notation indicates the file type and isn't related to permissions in any way. The 


remaining characters are in sets of three, each representing a class of permissions. 
The first class is the user class. The second class is the group class. The third class is the other class. 


Each of the three characters for a class represents the read, write and execute permissions. 


e r will be displayed if reading is permitted 
e w will be displayed if writing is permitted 
e x will be displayed if execution is permitted 


e -will be displayed in the place of r, w, and x, if the respective permission is mot permitted 


Here are some examples of symbolic notation: 


e -rwxr--r--: A regular file whose user class has read/write/execute, group class has only read 
permissions, other class has only read permissions 

e = drw-rw-r--: A directory whose user class has read/write permissions, group class has read/write 
permissions, other class has only read permissions 

e crwxrw-r--: A character special file whose user has read/write/execute permissions, group class has 


read/write permissions, other class has only read permissions 


Octal notation 


Octal (base-8) notation consists of at least 3 digits (sometimes 4, the left-most digit, which represents the setuid 
bit, the setgid bit, and the sticky bit). 


Each of the three right-most digits are the sum of its component bits in the binary numeral system. 


For example: 


e The read bit (r in symbolic notation) adds 4 to its total 
e The write bit (w in symbolic notation) adds 2 to its total 


e The execute bit (x in symbolic notation) adds 1 to its total 


So what number would you use if you wanted to set a permission to read and write? 4 + 2 = 6. 


Symbolic , , , 
; Octal notation Plain English 
notation 
-rwxr--fr-- 0744 user class can read/write/execute; group class can read; other class can read 
-rW-rW-r-- 0664 user class can read/write; group class can read/write; other class can read 
user class can read/write/execute; group class can read/write/execute; 
-rwxrwxr-- O774 
other class can read 
oe 0000 None of the classes have permissions 
user class can read/write/execute; group class has no permissions; 
_rwx------ 0700 a 
other class has no permissions 
-rWXrWXrWX OTT All classes can read/write/execute 
-rw-rw-rw 0666 All classes can read/write 
Y- XY- Xf- X 0555 All classes can read/execute 


sfp y 0444 All classes can read 


--WX-WX-WX 0333 All classes can write/execute 


--W--W--W- 0222 All classes can write 
m O111 All classes can execute 
All together now 


Let's use the examples from the symbolic notation section and show how it'd convert to octal notation 


CHMOD commands 


Now that we have a better understanding of permissions and what all of these letters and numbers mean, let's take 


Permission 

(symbolic CHMOD command Description 

nocation) 
-rwxrwxtwx chmod 0777 filename; chmod -R 0777 dir All classes can read/write/execute 

. : user can read/write/execute; all others can 
-rwxr--r-- chmod 0744 filename; chmod -R 0744 dir 
read 

=fw=f==f-= chmod 0644 filename; chmod -R 0644 dir user class can read/write; all others can read 
-rw-rw-rw- chmod 0666 filename’ chmod -R 0666 dir All classes can read/write 


a look at how we can use the chmod command in our terminal to change permissions to anything we'd like! 
These are just some examples. Using your new-found knowledge, you can set any permissions you'd like! Just be 


careful and make sure you don't break your system. 


